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IN THE CLAIMS: 
Amended claims follow: 

1 . (Currently Amended) A method for managing user attributes in a 
distributed computing system, wherein user attributes determine access rights to a 
computer application; the method comprising: 

modifying an attribute database in order to create modifications , wherein 
the attribute database includes a plurality of possible user attributes and a data 
structure identifying a plurality of users; 

obtaining an identity certificate from a certificate authority; 

associating the identity certificate with a user from the plurality of users 
within the attribute database , thus creating more of the modifications : 

assigning an attribute from the plurality of possible user attributes to the 
use r, wh e r e by the user is granted access rights based on the attribut e and the 
identity certificate ; 

storing the attribute assigned to the user into the attribute database , thus 
creating more of the modifications : and 

distributing ^modifications to the attribute database to a plurality of 
hosts coupled together by a network: 

wherein the us er is granted access rights based on the attribute and the 
identity certificate . 

2. (Currently Amended) The method of claim 1 , further comprising: 
assigning a second attribute from the plurality of possible user attributes to 
the use r, in addition to said attribute : and 
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storing the second attribute assigned to the user into the attribute database^ 
thus creating more of the modiJIcations . 

3. (Currently Amended) The method of claim 1 , further comprising 
using secure communications fo rwhen distributing the modifications to the 
attribute database to the plurality of hosts. 

4. (Currently Amended) The method of claim 1 , further comprising 
signing the attribute database with a cryptographic signature prior to the 
distributing to allow detection of unauthorized changes to the attribute database. 

5. (Currently Amended) The method of claim 1 9 wherein a host of the 
plurality of hosts can distribute the modifications to the attribute database to a 
subordinate host in a tree architecture. 

6. (Currently Amended) The method of claim 1 , further comprising 
allowing the user to assume any attribute stored into the attribute database that is 
assigned to the use r during the assigning . 

7. (Currently Amended) The method of claim 1 , further comprising: 
deleting the attribute assigned to the user from the attribute database , after 

the distributing, thus creating more of the modifications : and 

redistributing the modifications to the attribute database to the plurality of 

hosts. 

8. (Original) The method of claim 1, wherein modifying the attribute 
database includes creating the attribute database. 
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9. (Currently Amended) A computer-readable storage medium storing 
instructions that when executed by a computer cause the computer to perform a 
method for managing user attributes in a distributed computing system, wherein 
user attributes determine access rights to a computer application: the method 
comprising; 

modifying an attribute database in order to create modifications, wherein 
the attribute database includes a data structure identifying a p lurality of possible 
user attributes and a plurality of users: 

obtaining an identity certificate from a certificate authority; 

associating the identity certificate with a user from the plurality of users 
within the attribute database , thus creating more of the modifications : 

assigning an attribute from the plurality of possible user attributes to the 
use r, wh e reby the us e r is grant e d acc e s s rights basod on the attribute and the 
identity certificat e; 

storing the attribute assigned to the user into the attribute database , thus 
creating more of the modifications : and 

distributing the modifications to the attribute database to a plurality of 
hosts coupled together by a network; 

wherein the user is granted access rights based on the attribute and the 
identity certificate . 

1 0. (Currently Amended) The computer-readable storage medium of 
claim 9, the method further comprising: 

assigning a second attribute from the plurality of possible user attributes to 
the use r, in addition to said attribute : and 
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